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This listing of claims will replace all prior versions, and listings, of claims in the application. 
Listing of Claims: 

1 . (Previously Presented) A method of protecting data comprising the acts ol: 

creating a first process associated with a first address space, said first process 
comprising an executing trusted application; 

creating a second process associated with a second address space, said first 

i 

address space being inaccessible to said second process, said second process created by and 
controlled by said first process, said second process comprising an executing untrusted 
application; 

I 

running, in said first process, a first software object which stores data in said first 

address space; 

I 

running, in said second process, a second software object which accesses said 
second address space; and 

directing, by said first process, an action performable by said second software 

i 

process. 



2. (Original) The method of claim 1, wherein the data comprises encrypted content, 

I 

and wherein said act of running said first software object comprises the act of: 

i 

starting in said first process an application which renders said encrypted content. 



3. (Original) The method of claim 2, wherein said encrypted content comprises text. 



4. (Previously Presented) The method of claim 2, wherein said encrypted content 
comprises video. 



5. (Original) The method of claim 2, wherein said encrypted content comprises 



audio. 
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6. (Original) The method of claim 1, wherein the data comprises a cryptographic 
key, and wherein said act of running said first software object comprises the act of: 

starting in said first process an application which uses said cryptographic key. 



7. (Original) The method of claim 1, wherein said act of running a second software 
object comprises the acts of: 

I 

starting, in said second process, a hosting application; 

i 

hosting said second software object by said hosting application. 



8. (Previously Presented) The method of claim 7, wherein said act of starting said 
hosting application comprises starting a component object model server. 



9. (Original) The method of claim 1, wherein said second software object comprises 
a web browser which imports, from a remote computing device, code which accesses said second 
address space. 

10. (Previously Presented) The method of claim 1, wherein said method is performed 
in a computing device having a display associated therewith, said method further comprising the 
acts of: J 

rendering an output of said first software object in a first window having a first 
region on said display; and 

I 

rendering an output of said second software object in a second window different 

i 

from said first window, said second window having a second region on said display. 



11. (Original) The method of claim 10, wherein said second region at least partly 

I 

coincides with said first region. 
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12. (Original) The method of claim 11, wherein said second window is wholly 
enclosed within said first window. 



13. (Original) The method of claim 1, wherein said directing act comprises calling a 
method on an interface exposed by said second process. 



14. (Original) The method of claim 13, wherein said second software object 

comprises a web browser, and wherein said method instructs said web browser to retrieve a web 

i 

page from a remote location. 



15. (Original) A computer-readable medium having computer-executable 

i 

instructions to perform the method of claim 1. 



16. (Previously Presented) A system for integrating a secure application with an open 
application on a computing device including a processor, said computing device further 
including an operating system which provides a plurality of processes, each process having an 
address space associated therewith, said system compnsing: 

a first trusted application executable on said processor in a first of said plurality of 
processes having a first address space, wherein said first trusted application accesses protected 

data in said first address space, and wherein said first trusted application provides a service by 

I 

using a pre-determined software object; 

a second untrusted application executable on said processor in a second of said 
plurality of processes having a second address space, said second process created and controlled 
by said first process, wherein said second untrusted application hosts said pre-determined 
software object, and wherein said second untrusted application exposes a callable interface to 
said first trusted application, said first address space being inaccessible to said second process. 
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17. (Original) The system of claim 16, wherein said first application directs the 
actions of said pre-determined software object by communicating instructions to said second 
application through said callable interface. 

18. (Original) The system of claim 16, wherein said pre-determined software object 
comprises a web browser which imports, from a remote computing device, code which executes 

on said processor and which accesses data in an address space associated with a process in which 

i 

said pre-determined software, object executes. 

19. (Original) The system of claim 16, wherein said first application protects said 

I 

protected data from observation or modification. 

20. (Original) The system of claim 16, wherein said computing device is coupled to a 
display, wherein said first application creates a first window in which said first application 
renders its output, said first window defining a first region on said display, and wherein said 
second application creates a second window in which said pre-determined software ; object 
renders its output, said second window being different from said first window, said second 

i 

window defining a second region on said display. 

21. (Original) The system of claim 20, wherein said second region coincides at least 
in part with said first region. 

22. (Original) The system of claim 21, wherein said second window is wholly 
enclosed within said first window. 



23. (Original) The system of claim 20, wherein said second window comprises a 
child of said first window. 
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24. (Original) The system of claim 16, wherein said first application instantiates one 
or more of: (a) said second application; or (b) the hosting of said pre-deterrnined software object. 



25-31. Cancelled. 
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